$ rpki-client -vvf rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/5AB6E29E5D3E11EE93D0E174C4F9AE02.roa File: 5AB6E29E5D3E11EE93D0E174C4F9AE02.roa (raw, json) Hash identifier: 4cumYBn0lyhSsOjdgykM3gRpCx7LH51/perTLX8d77s= Subject key identifier: 12:F4:67:3F:88:60:15:CF:32:FA:9A:E7:AF:9A:FE:7E:51:0D:49:EC Certificate issuer: /CN=A915AF7A/serialNumber=F10892F85468BF004EEF5F4E1FA5917F0632A049 Certificate serial: 02 Authority key identifier: F1:08:92:F8:54:68:BF:00:4E:EF:5F:4E:1F:A5:91:7F:06:32:A0:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8QiS-FRovwBO719OH6WRfwYyoEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/5AB6E29E5D3E11EE93D0E174C4F9AE02.roa Signing time: Wed 27 Sep 2023 14:01:29 +0000 ROA not before: Wed 27 Sep 2023 14:01:29 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 139300 IP address blocks: 103.167.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/8QiS-FRovwBO719OH6WRfwYyoEk.crl rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/8QiS-FRovwBO719OH6WRfwYyoEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8QiS-FRovwBO719OH6WRfwYyoEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915AF7A/serialNumber=F10892F85468BF004EEF5F4E1FA5917F0632A049 Validity Not Before: Sep 27 14:01:29 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=651435b8-9854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:81:ac:10:b6:45:cc:d0:67:99:ed:8c:14:dc: 24:ab:e1:12:e5:3b:1a:7b:fb:e0:a2:4f:f5:e9:81: 0e:6a:72:61:34:ef:fe:c8:fe:0d:81:e0:1f:24:2a: 0c:65:dd:59:6b:25:cc:80:22:69:d9:4d:30:ee:9e: 7a:53:7e:42:d5:d5:24:d5:5e:06:9d:79:06:b3:75: 63:00:c0:e8:fd:b1:23:af:8e:52:12:76:bf:5a:5d: 40:9a:c6:e0:ce:4b:f1:f7:27:80:89:ca:aa:e8:7a: 48:3a:5d:c5:ff:11:0a:61:88:db:06:5e:f2:3b:b1: ed:26:a5:c8:eb:33:4c:25:8f:c0:d3:ab:f3:1e:a8: 49:dc:21:b1:ac:14:5f:21:10:65:ea:86:8e:a3:e2: 27:7a:15:16:b8:30:57:13:9e:cd:dc:d7:c4:0e:59: ba:26:ca:f2:13:2a:99:84:05:e7:19:aa:55:04:d2: 86:f6:87:6f:84:b0:c8:4b:07:93:60:f9:78:79:7c: 8d:79:61:95:72:58:9f:15:80:d0:e0:3e:01:55:94: b9:4d:9c:e4:89:eb:d0:6f:0a:5c:a2:db:27:54:e6: 9f:c6:a9:78:e4:04:02:65:34:8b:36:1f:07:52:4e: bf:bf:e6:4f:8d:24:ee:d6:cb:e3:5b:95:48:bc:6c: ef:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:F4:67:3F:88:60:15:CF:32:FA:9A:E7:AF:9A:FE:7E:51:0D:49:EC X509v3 Authority Key Identifier: keyid:F1:08:92:F8:54:68:BF:00:4E:EF:5F:4E:1F:A5:91:7F:06:32:A0:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/8QiS-FRovwBO719OH6WRfwYyoEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8QiS-FRovwBO719OH6WRfwYyoEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/5AB6E29E5D3E11EE93D0E174C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.41.0/24 Signature Algorithm: sha256WithRSAEncryption bb:8d:41:d8:98:a3:d3:da:e2:f5:92:39:5e:d0:6a:46:33:c1: 1a:2e:be:10:5a:0a:ac:fa:20:e7:3b:a8:87:b9:d6:bd:04:69: 22:8d:d2:ac:98:fa:ed:40:4b:84:5b:d5:51:45:d8:7f:3c:b2: 34:ee:d2:4f:0f:64:b2:e7:78:8f:9f:1e:22:33:fd:49:1d:1d: cf:24:f7:b3:5f:b3:17:34:94:04:33:ea:17:50:51:d3:6b:5d: 80:bb:d4:23:19:fb:b8:01:23:0c:52:d0:77:f7:20:b0:72:e9: 65:d0:ff:67:f5:44:4a:1a:ca:3c:cf:51:40:da:eb:7d:de:bd: c9:d4:93:af:03:87:d3:09:18:21:53:db:92:95:3d:01:c0:67: 12:ba:3e:5f:31:d4:02:15:26:f2:31:f5:48:78:23:b0:16:87: 45:33:1a:96:ba:95:07:1b:81:51:de:9a:3b:78:8f:73:4c:f8: e9:11:35:bf:5e:e4:ec:c5:6b:9f:07:3d:be:b0:f0:92:a7:a2: 3e:22:c2:d3:51:3a:8a:36:1c:e7:00:85:98:5e:b8:07:6f:43: fb:ed:0e:a4:11:cc:4e:ca:73:16:0b:de:9a:19:f9:bf:2b:2e: d3:32:a1:57:a4:3b:4d:4c:59:38:15:a1:3d:02:6d:4a:49:8e: f2:9c:09:66 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QUY3QTExMC8GA1UEBRMoRjEwODkyRjg1NDY4QkYwMDRFRUY1RjRFMUZBNTkxN0Yw NjMyQTA0OTAeFw0yMzA5MjcxNDAxMjlaFw0yNDA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MTQzNWI4LTk4NTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCYgawQtkXM0GeZ7YwU3CSr4RLlOxp7++CiT/XpgQ5qcmE07/7I/g2B4B8kKgxl 3VlrJcyAImnZTTDunnpTfkLV1STVXgadeQazdWMAwOj9sSOvjlISdr9aXUCaxuDO S/H3J4CJyqroekg6XcX/EQphiNsGXvI7se0mpcjrM0wlj8DTq/MeqEncIbGsFF8h EGXqho6j4id6FRa4MFcTns3c18QOWbomyvITKpmEBecZqlUE0ob2h2+EsMhLB5Ng +Xh5fI15YZVyWJ8VgNDgPgFVlLlNnOSJ69BvClyi2ydU5p/GqXjkBAJlNIs2HwdS Tr+/5k+NJO7Wy+NblUi8bO+XAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUEvRnP4hg Fc8y+prnr5r+flENSewwHwYDVR0jBBgwFoAU8QiS+FRovwBO719OH6WRfwYyoEkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVBRjdBL0UwNTMzMzM2QkFD OTExRUJCODA3RDUxQ0M0RjlBRTAyLzhRaVMtRlJvdndCTzcxOU9INldSZndZeW9F ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOFFpUy1GUm92d0JPNzE5T0g2V1Jmd1l5b0VrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QUY3QS9FMDUzMzMzNkJBQzkxMUVCQjgwN0Q1MUNDNEY5QUUwMi81QUI2RTI5RTVE M0UxMUVFOTNEMEUxNzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGenKTANBgkqhkiG9w0BAQsFAAOCAQEAu41B2Jij09ri9ZI5 XtBqRjPBGi6+EFoKrPog5zuoh7nWvQRpIo3SrJj67UBLhFvVUUXYfzyyNO7STw9k sud4j58eIjP9SR0dzyT3s1+zFzSUBDPqF1BR02tdgLvUIxn7uAEjDFLQd/cgsHLp ZdD/Z/VEShrKPM9RQNrrfd69ydSTrwOH0wkYIVPbkpU9AcBnEro+XzHUAhUm8jH1 SHgjsBaHRTMalrqVBxuBUd6aO3iPc0z46RE1v17k7MVrnwc9vrDwkqeiPiLC01E6 ijYc5wCFmF64B29D++0OpBHMTspzFgvemhn5vysu0zKhV6Q7TUxZOBWhPQJtSkmO 8pwJZg== -----END CERTIFICATE-----Generated at Fri May 17 02:01:41 2024 by rpki-client on console-ams.rpki-client.org